General Gaming Article

General Gaming Article


20 Tips and Tricks to Use Google Drive Like a Boss

Posted: 02 Jan 2015 03:26 PM PST

Google DriveGet more out of Google Drive

With 240 million monthly active users, there's a good chance that if you're reading this, you've used Google Drive before. The cloud-based file storage and synchronization service is far more than a virtual storage container, it's also a parking spot for several of Google's other services, such as the company's productivity suite: Google Docs, Sheets, and Slides. By binding these (and other) services together, Google is able to integrate intelligent functionality, such as real-time collaborative edits.

Cool stuff for sure, but are you getting the most out of Google Drive? Probably not, although you could be if you take some time to learn Google Drive's little nuances and power user-level tricks. There are many out there, but rather than smack your behind and send you on your way, we've gone and put together a gallery containing 20 of the most useful tips, tricks, and tools available. So sit back for a spell, get comfortable, and click your way to becoming a better Google Drive user!

Follow Paul on Google+, Twitter, and Facebook

Google Posts Unpatched Windows 8.1 Vulnerability After Disclosure Deadline

Posted: 02 Jan 2015 08:31 AM PST

GoogleDid Google do the right thing?

There's a bit of debate brewing over whether or not Google did the right thing by posting a Windows 8.1 security vulnerability to the public before Microsoft was able to release a patch. The disclosure came from Google's Project Zero program, which hunts down vulnerabilities in software and alerts its findings to vendors "in as close to real-time as possible." Vendors are then given a 90-day deadline to issue a patch, and in this case, Microsoft didn't react in time.

Here's what happened. A Google researcher discovered a vulnerability in Windows 8.1 that could give low-level users administrator rights. The Project Zero team communicated its findings with Microsoft, and when the 90-day deadline came and went without a patch a few days ago, they went ahead and posted the exploit details online.

"Automatically disclosing this vulnerability when a deadline is reached with absolutely zero context strikes me as incredibly irresponsible and I'd have expected a greater degree of care and maturity from a company like Google," reads a comment in reply to the disclosure. "My reading of the disclosure is that it's your average local privilege escalation vulnerability. That's bad and unfortunate, but it's also a fairly typical class of vulnerability, and not in the same class as those that keep people like me up at night patching servers. The sad reality is that these sort of vulnerabilities are a dime a dozen on Windows, and the situation on Linux is pretty comparable. But disclosing it with zero context strikes me as the wrong approach."

"Agree with comment #5. This OS is run by billions. Exposing vulnerabilities like this has far reaching consequences. People could get hurt by this and it doesn't bring anyone closer to a solution. I find it difficult to believe that MSFT and GOOG don't have red-telephone access to each other if needed," another reader commented.

Not everyone shared the same opinion.

"Attackers are not going to take the day off because it's the Holidays. Microsoft dropped the ball, did not perform a security assessment of the new features before releasing them into production, and now have to deal with the consequences," a reader pointed out.

There was a bit of confusion as to whether Google even contacted Microsoft about the security flaw, which it in fact did back in September. Google points out that its initial report included the 90-day disclosure deadline, a policy that's been in place since the team was formed last year.

However, not everyone agrees with the lack of flexibility in Project Zero's policy, especially when the deadline falls during a holiday break and affects millions of PCs.

"We are working to release a security update to address an Elevation of Privilege issue," Microsoft said in a statement, according to Engadget. "It is important to note that for a would-be attacker to potentially exploit a system, they would first need to have valid logon credentials and be able to log on locally to a targeted machine. We encourage customers to keep their anti-virus software up to date, install all available Security Updates and enable the firewall on their computer."

What's your opinion on this? Should Google have waited a bit longer, or does this fall squarely on Microsoft's shoulders for failing to respond within 90 days?

Follow Paul on Google+, Twitter, and Facebook

FTC Slaps Snapchat with 20-Year Privacy Monitor

Posted: 02 Jan 2015 07:53 AM PST

SnapchatFTC settles charges with Snapchat

At the conclusion of a public comment period, the Federal Trade Commission approved a final order settling charges that Snapchat deceive consumers in regards to the way messages sent through the video and chat service supposedly disappear. As part of the settlement, Snapchat is required to implement a comprehensive privacy program that will be monitored by an independent privacy professional for the next 20 years.

The settlement is the result of a complaint dating back to last May over the app's promise of "disappearing" messages, which was found to be misleading since there are a number of different ways to retrieve, save, or otherwise capture pictures that were thought to be gone forever.

Snapchat's relatively rapid rise in popularity led to separate reported $1 billion and $3 billion buyout offers from Facebook, both of which the picture and video messaging service turned down. However, its success also put it in the spotlight -- in addition to drawing ire for misrepresenting the disappearing nature of messages, Snapchat found itself in trouble for the amount of private information collected. It was also criticized for an exploit that compromised the unsernames and phone numbers of 4.6 million people.

As part of the settlement, Snapchat agreed that it "shall not misrepresent in any manner, expressly or by implication, in or affecting commerce, the extent to which respondent or its products or services maintain and protect the privacy, security, or confidentiality of any covered information" dealing with deleted messages and other aspects of the app.

You can read the full settlement here (PDF).

Follow Paul on Google+, Twitter, and Facebook

Total Pageviews

statcounter

View My Stats